I am responsible for scanning and fixing issues on ~50 servers with Microsoft Baseline Security Analyzer (MBSA) version 2.2. Unfortunately, there is no out of the box way to manage multiple MBSA results. The only semi-official way to do this has been through the scripting examples page, and even this is not very great. It only sort of tallies the results up without giving details.

The best way I have come up with so far is changing the file extension of the MBSA results to XML and importing them into an excel spreadsheet but it is very tedious as it includes every detail, even if there is no issue, additionally this is suspicious to auditors who want "tamper free" results.

Is there a better method / procedure / program / trick to managing these results?